Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/asqzSGQdwYovHv-Trb9F57Iq96Y.roa
File: asqzSGQdwYovHv-Trb9F57Iq96Y.roa (raw, json)
Hash identifier: UY3Vk3zDw8WXVHrGeAZWXI6GdfEwh1tIsQnypEhXBtw=
Subject key identifier: 6A:CA:B3:48:64:1D:C1:8A:2F:1E:FF:93:AD:BF:45:E7:B2:2A:F7:A6
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 05073D8A
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/asqzSGQdwYovHv-Trb9F57Iq96Y.roa
Signing time: Sat 02 Jul 2022 00:53:25 +0000
ROA not before: Sat 02 Jul 2022 00:53:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 45.140.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84360586 (0x5073d8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jul 2 00:53:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6acab348641dc18a2f1eff93adbf45e7b22af7a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c8:ab:e2:aa:02:f4:64:58:bf:0f:c5:ce:44:
ee:ee:97:28:26:17:b0:f1:a2:1a:76:fe:5a:d6:24:
a7:71:f0:77:24:23:f6:eb:b4:87:e0:20:f4:97:67:
38:44:f7:ac:ed:e0:67:92:67:75:70:6b:b8:9e:5f:
bf:b6:39:11:c4:6d:a3:8d:15:50:10:2b:23:9b:8b:
8c:05:a4:5c:4f:e4:6e:a4:b7:79:0c:b7:31:e4:2e:
ac:57:77:d6:2f:3c:32:ca:49:a3:79:72:33:52:4a:
c3:90:a4:d6:c6:93:fd:1e:d3:77:53:59:3b:d9:34:
ed:c9:6d:45:be:69:bd:dd:b7:8b:a4:74:96:d3:00:
c9:18:a4:2e:8f:73:a8:02:a0:10:8e:c0:53:42:72:
62:4d:2c:d1:2c:bc:7c:b5:1c:2e:fa:60:27:91:72:
37:da:e0:a2:fe:aa:3d:97:47:e3:86:c2:13:9c:f8:
3b:b4:79:27:f8:5e:92:4a:da:b1:7e:84:30:56:15:
cd:59:21:a6:13:61:0e:8f:59:d9:fd:65:76:65:76:
83:26:1d:a5:45:d6:75:a0:f1:fa:96:26:a8:80:92:
ce:91:49:69:c8:86:ae:be:e3:f6:83:74:cb:c7:4d:
34:28:6f:75:bc:b5:91:2b:de:d0:1f:21:32:f7:bc:
c2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CA:B3:48:64:1D:C1:8A:2F:1E:FF:93:AD:BF:45:E7:B2:2A:F7:A6
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/asqzSGQdwYovHv-Trb9F57Iq96Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.194.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:9f:10:f4:e8:f4:f0:be:b5:dc:ac:b5:1b:1e:6b:ca:37:2c:
7b:6d:a9:a9:91:02:2c:75:f1:4d:73:0d:7d:df:de:e3:0f:0a:
47:a8:8c:e8:a4:dd:da:d5:b0:57:9f:cc:80:ba:41:5f:e6:78:
db:84:1a:27:b1:16:a0:51:e3:87:a2:73:5e:59:df:12:c6:4d:
ef:68:a9:de:27:35:e3:88:96:93:39:0a:24:af:7c:d6:72:c7:
0c:67:ce:83:b0:03:7b:c2:a3:3b:ad:49:13:c6:b4:f0:37:7a:
77:27:22:c6:86:c4:2c:c9:67:e4:44:2f:f8:95:cd:a1:ba:a9:
d4:5f:1d:be:b4:01:e9:86:a4:ce:bb:e0:d7:ed:37:cd:58:6f:
b3:07:6a:2a:68:70:04:2e:99:77:e4:8f:ff:92:58:c1:a8:f4:
31:1c:2f:c2:72:bf:41:c2:fc:76:75:4c:f0:69:5b:e5:2f:21:
5f:89:31:4e:cc:ae:f4:a3:41:25:ca:dc:98:47:d4:2c:37:f7:
44:63:6e:8e:e0:6a:85:89:6c:05:35:46:ab:13:22:8e:cc:3b:
64:76:33:1f:28:7c:40:b0:a0:dc:da:d2:c5:fe:b6:e1:6b:e7:
e5:f7:ab:44:36:6b:d9:5d:3a:ac:0e:06:90:92:20:6c:b4:7f:
23:27:bc:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:03 2023 by rpki-client on console-ams.rpki-client.org